c4a5c2f351dbec8dba9c85c18a783e0d7204be340f9b4fc8ac1e451f1bbbb3f4 | Triage

Sharing

General

Target

c4a5c2f351dbec8dba9c85c18a783e0d7204be340f9b4fc8ac1e451f1bbbb3f4
Size

304KB
Sample

221124-enfrfaga82
MD5

3e64d4266f250317421d1d54bc1523c3
SHA1

ca6c00d5d6878ea2bd8209764f48c43fadbc0317
SHA256

c4a5c2f351dbec8dba9c85c18a783e0d7204be340f9b4fc8ac1e451f1bbbb3f4
SHA512

ab7afa2f3f20dec4f60ef2341fef22c07ccf68d6da69244fd6ebe0486f1a038f19218cf044813be336c223fa367c19eade63c14acfb3f653dd4d0c791fb6bbe7
SSDEEP

6144:9rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPe:9rkuu6/eIo4tQW62T+uTwM6YVxm24e

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c4a5c2f351dbec8dba9c85c18a783e0d7204be340f9b4fc8ac1e451f1bbbb3f4
- Size
  
  304KB
- MD5
  
  3e64d4266f250317421d1d54bc1523c3
- SHA1
  
  ca6c00d5d6878ea2bd8209764f48c43fadbc0317
- SHA256
  
  c4a5c2f351dbec8dba9c85c18a783e0d7204be340f9b4fc8ac1e451f1bbbb3f4
- SHA512
  
  ab7afa2f3f20dec4f60ef2341fef22c07ccf68d6da69244fd6ebe0486f1a038f19218cf044813be336c223fa367c19eade63c14acfb3f653dd4d0c791fb6bbe7
- SSDEEP
  
  6144:9rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPe:9rkuu6/eIo4tQW62T+uTwM6YVxm24e
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2